Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/daff4f-42e1-4fef-a4e8-9ef964c6b569/1/4hG0H-b8QgOTL6mxzFX5zwPYD48.roa
File: 4hG0H-b8QgOTL6mxzFX5zwPYD48.roa (raw, json)
Hash identifier: OnHOXm/kruNfurIZOQLSy+NwUoJP3Vh9SvIgdAAcoAY=
Subject key identifier: E2:11:B4:1F:E6:FC:42:03:93:2F:A9:B1:CC:55:F9:CF:03:D8:0F:8F
Certificate issuer: /CN=0378e22b02510d29f8c184a6f663eb98fd1d6aa7
Certificate serial: 01A5712C
Authority key identifier: 03:78:E2:2B:02:51:0D:29:F8:C1:84:A6:F6:63:EB:98:FD:1D:6A:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3jiKwJRDSn4wYSm9mPrmP0daqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/daff4f-42e1-4fef-a4e8-9ef964c6b569/1/4hG0H-b8QgOTL6mxzFX5zwPYD48.roa
Signing time: Sat 01 Jan 2022 06:06:34 +0000
ROA not before: Sat 01 Jan 2022 06:06:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56457
IP address blocks: 185.201.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27619628 (0x1a5712c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0378e22b02510d29f8c184a6f663eb98fd1d6aa7
Validity
Not Before: Jan 1 06:06:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e211b41fe6fc4203932fa9b1cc55f9cf03d80f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a7:7c:60:2d:e1:3e:9f:3c:83:a5:b6:3a:4b:
1b:de:24:5b:94:3b:1c:69:b8:02:34:41:b7:cf:ad:
82:b2:1a:52:84:5f:a7:fd:1f:41:b9:06:ce:64:4c:
7f:12:e6:19:39:e5:75:31:f1:34:13:25:5a:91:2b:
bd:49:2f:97:d5:53:ee:54:d3:ed:c2:b7:44:d8:56:
f4:6b:8b:e5:bc:0c:9f:f1:15:73:d8:6c:ab:25:c3:
4b:28:f8:c5:87:f2:d3:96:31:9b:14:28:14:99:c1:
00:dc:64:bf:df:48:50:b6:c6:11:09:92:81:bb:2a:
86:a3:db:fc:eb:7a:a8:d4:fe:6f:84:9c:3f:cf:59:
55:6f:69:4a:e4:bc:ae:a7:a2:0b:8c:cf:a5:c8:b0:
2f:55:6c:46:19:cf:18:04:45:98:3e:58:f5:82:e9:
47:34:43:90:6a:0f:a2:4b:d8:b7:d0:35:a3:50:b0:
be:90:0e:9f:92:f5:d0:b5:a8:3b:94:43:e9:96:bd:
d5:de:66:90:8a:36:2c:d2:0d:60:19:f9:c1:c7:93:
30:cc:08:18:a8:e0:d4:0c:c6:ce:d5:c6:9c:d2:8d:
20:27:8f:e5:0a:fc:13:83:d8:d7:a6:0e:ff:3d:7f:
cd:af:71:dd:be:40:6a:98:65:dc:19:64:07:93:dc:
7f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:11:B4:1F:E6:FC:42:03:93:2F:A9:B1:CC:55:F9:CF:03:D8:0F:8F
X509v3 Authority Key Identifier:
keyid:03:78:E2:2B:02:51:0D:29:F8:C1:84:A6:F6:63:EB:98:FD:1D:6A:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3jiKwJRDSn4wYSm9mPrmP0daqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/daff4f-42e1-4fef-a4e8-9ef964c6b569/1/4hG0H-b8QgOTL6mxzFX5zwPYD48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/daff4f-42e1-4fef-a4e8-9ef964c6b569/1/A3jiKwJRDSn4wYSm9mPrmP0daqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.254.0/24
Signature Algorithm: sha256WithRSAEncryption
08:e3:57:c8:df:e8:d2:2e:d8:70:82:78:40:5d:f1:7f:7d:bc:
5d:75:cd:86:27:95:e3:cf:8f:2e:e4:9a:1a:cc:da:db:aa:72:
89:98:f1:c0:b1:d9:cc:e1:34:fb:49:93:c5:6c:93:68:5a:7c:
87:d8:8e:1d:60:99:54:09:67:40:0a:37:db:8c:17:23:64:2a:
15:24:bf:91:f6:01:a5:a8:c1:96:78:80:d8:eb:ae:c7:d5:83:
e0:b1:7e:3b:da:ee:66:26:94:71:21:71:bd:fe:89:58:4e:95:
93:b6:0a:e2:10:0a:54:07:7c:3c:7f:04:a0:48:eb:19:5f:e5:
ac:69:06:8a:a0:5b:98:ea:ae:3c:35:2f:ce:bd:c9:ec:32:c8:
b8:fd:c5:67:84:27:2e:93:47:79:a2:96:a0:5a:b0:c1:6b:02:
76:5f:a5:e5:b9:fa:8c:dc:f8:56:64:46:84:48:89:aa:33:31:
7f:f7:50:e7:2a:62:50:74:01:a8:89:89:5c:0a:9d:97:7b:84:
1b:f9:5f:b7:e1:82:28:71:2b:73:2d:c3:9d:f2:89:bc:80:bd:
0a:7d:f2:4f:25:62:8c:5a:30:12:05:eb:b2:b5:6e:07:8c:f9:
a4:fe:df:28:1b:42:6b:18:a0:8e:fa:56:52:1d:8b:13:99:81:
d2:1f:86:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:37 2025 by rpki-client